N/A

Due to a bug with management of handles in OVRServiceLauncher.exe, an attacker could expose a privileged process handle to an unprivileged process, leading to local privilege escalation. This issue affects Oculus Desktop versions after 1.39 and prior to 31.1.0.67.507.

N/A

特权管理不恰当

Facebook Oculus Desktop 安全漏洞

Facebook Oculus Desktop是美国Facebook公司的一款支持在VR中操作计算机的虚拟桌面应用程序。 Facebook Oculus Desktop 存在安全漏洞，该漏洞源于OVRServiceLauncher.exe中的句柄管理错误，攻击者可利用该漏洞可能会将有特权的进程句柄暴露给无特权的进程，导致本地权限升级。

N/A

N/A